An independent security researcher named Renganathan P recently alerted the Indian Computer Emergency Response Team (CERT-In) about a major vulnerability on the IRCTC platform that allowed easy access to private information of lakhs of passengers. Not just that, exploiting the IDOR (Insecure Direct Object Reference) vulnerability on IRCTC could have even allowed the attacker to cancel booked train tickets of random passengers.via ©Times Of India
ليست هناك تعليقات:
إرسال تعليق